Denial of Service Vulnerability in Cisco VPN 3000 Series Concentrators
CVE-2006-0483

Currently unrated

Key Information:

Vendor: Cisco
Status: Vpn 3030 Concentator; Vpn 3000 Concentrator Series Software
Vendor: CVE Published:; 31 January 2006

What is CVE-2006-0483?

Cisco's VPN 3000 series concentrators, specifically those running software versions 4.7.0 through 4.7.2.A, are susceptible to a denial of service attack. This vulnerability can be exploited by a remote attacker sending a specially crafted HTTP packet, potentially causing the device to reload or disconnect users. Organizations using these concentrators should take immediate precautions to secure their devices and mitigate the risk of exploit.

References

http://secunia.com/advisories/18629

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/24330

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/16394

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 31, 2006
Vulnerability Reserved
Jan 31, 2006